Announcing the Reveal MSSP Console–delivering insider risk detection and response to the masses

Cyber    Tuval Chesler, October 12 2020
4 mins
MSSP large-26

Sign up for the MSSP Console today

For more information about the benefits of the MSSP Console and how to sign up for it, check out the MSSP Console page. 

MSSP Console for Ava Partners

In recent years, organizations from a wide array of sectors and sizes have turned to Managed Security Service Providers (MSSPs) to enhance their ability to monitor their environments and in turn, mitigate risks that might stem from insiders.  

With this growing demand, MSSPs are working harder than ever to deliver both accurate and effective services to their customers, whilst remaining lean and resource-aware. This challenge becomes ever so clear in the area of insider risk detection and response, where staff-fatigue and limited resources meet an increasing rate and cost of insider-based incidents, according to Ponemon/IBM Security 2020, and a growing market demand for detection and response services, according to Gartner, 2019. This leads to a raised market demand to decrease the cost and complexity of insider risk solutions while increasing effectiveness and outreach.

Since 2018 Ava Reveal’s insider risk detection and response solution has helped organizations to better understand their employees’ behavior and in turn mitigate insider risks – originating in malicious, careless, or accidental mindsets.

Today we announce that MSSPs can now manage all their monitored customers and prospects within a single pane of glass with our brand new product: the Reveal MSSP Console.

MSSP landing

The MSSP Console empowers service providers in two distinct manners–operations and security monitoring

First, the console enables MSSPs to easily manage their different customer accounts, along the onboarding cycle and as business requires. Service providers can seamlessly add and provision tenants, managing customers transition from the initial POC to production. The service providers can also easily charge their customers using the console’s automatic and easy-to-download billing reports. Additional admin related information, such as the number of licenses purchased in relation to the number of agents currently in use, the expiry date of the service and its date of commencement is also available in the reports. 

Second, the console enables operators to not only manage the accounts at hand, but also to deliver the service itself - detection and response of insider risks. By providing all the necessary information in a single pane of glass, the Reveal service can now be simultaneously delivered to a high volume of customers. Using the console, operators can investigate tenant-specific information such as the number of unresolved alarms and their severity levels, simplifying and boosting analysts’ ability to investigate quickly and effectively. Operators can also seamlessly directly access all their managed tenants securely and efficiently, without the need to login once again - bypassing the pain that too many service providers face nowadays when dealing with multi-tenancy.

MSSP billing

The combined forces of Reveal and the MSSP Console manifest in five key areas:

  1. A one-stop-shop for insider risk: As Reveal includes the product breadth of insider risk detection and response, such as data loss protection (DLP) and cyber hygiene, operators can now leverage the MSSP Console to make other security tools redundant and use the combined forces of the two products as their end-to-end insider risk solution.
  2. Instant value delivered to multiple customers: Using the MSSP Console’s easy deployment and provisioning capabilities with Reveal’s existing out-out-the-box policies, behavioural analytics and machine learning sensors, MSSPs can quickly detect abnormal behaviors and gain valuable insights and would help their customer base in mitigating their insider risk 
  3. Continuous monitoring at scale: With the MSSP Console’s centralized dashboard, Analysts can now monitor and investigate each environment via Reveal whilst still keeping an eye for alarms on the rest of their managed tenants - jumping from one to the other in a safe, secure and seamless manner.
  4. Multi-tenanted visibility and benchmarking: In most cases, analysts’ judgment of the overall insider risk level of an organization is done on a per tenant basis. With the combined forces of the two products, analysts can now get valuable insights and benchmark the organization´s alarm level against peer tenants.
  5. Insider risk posture and account management insights: Operators can not only view key info on the organizations’ alarms and severity level, but can also control their spend and increase their efficiency by monitoring the actual usage of the service by their customer, relative to the number of licenses purchased.
MSSP large-26

Sign up for the MSSP Console today

For more information about the benefits of the MSSP Console and how to sign up for it, check out the MSSP Console page. 

MSSP Console for Ava Partners